$ rpki-client -vvf rpki.apnic.net/member_repository/A91C6A87/DA24354E24C511F19A420EEBA5833773/55D930E024C611F1B0EE1E69A6833773.roa File: 55D930E024C611F1B0EE1E69A6833773.roa (raw, json) Hash identifier: Hw7ENTeCIJUN2Q7kCZRq1jtY4Qdg596dbpso11pOaj4= Subject key identifier: DE:25:2E:8F:70:2A:5C:89:29:D3:E5:C4:6F:67:2A:78:75:A6:2F:1A Certificate issuer: /CN=A91C6A87/serialNumber=86E425237BD23CE43D1198351812609BF40555F5 Certificate serial: 06 Authority key identifier: 86:E4:25:23:7B:D2:3C:E4:3D:11:98:35:18:12:60:9B:F4:05:55:F5 Authority info access: rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/huQlI3vSPOQ9EZg1GBJgm_QFVfU.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91C6A87/DA24354E24C511F19A420EEBA5833773/55D930E024C611F1B0EE1E69A6833773.roa Signing time: Sat 21 Mar 2026 01:37:46 +0000 ROA not before: Sat 21 Mar 2026 01:37:46 +0000 ROA not after: Sat 01 May 2027 00:00:00 +0000 asID: 133139 IP address blocks: 185.8.100.0/22 maxlen: 24 185.100.40.0/22 maxlen: 24 195.128.4.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91C6A87/DA24354E24C511F19A420EEBA5833773/huQlI3vSPOQ9EZg1GBJgm_QFVfU.crl rsync://rpki.apnic.net/member_repository/A91C6A87/DA24354E24C511F19A420EEBA5833773/huQlI3vSPOQ9EZg1GBJgm_QFVfU.mft rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/huQlI3vSPOQ9EZg1GBJgm_QFVfU.cer rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.crl rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/DPzneFf88B852ZpitKpi5hWedvg.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DPzneFf88B852ZpitKpi5hWedvg.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Wed 01 Apr 2026 08:23:39 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 6 (0x6) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91C6A87, serialNumber=86E425237BD23CE43D1198351812609BF40555F5 Validity Not Before: Mar 21 01:37:46 2026 GMT Not After : May 1 00:00:00 2027 GMT Subject: CN=69bdf66a-47cd Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:a9:b2:55:7f:4a:b0:8b:a0:61:81:9c:dd:82: 84:6d:15:94:7c:99:9e:15:10:27:17:5a:d4:02:0d: e2:6a:7f:73:07:e7:fd:07:e2:fd:3d:8d:ab:3f:10: 9a:02:54:c4:fe:0e:fe:1e:76:e6:70:79:d1:ea:19: d2:5d:5e:b0:fa:aa:33:41:d8:5c:2a:f4:f5:19:25: 19:93:0b:f0:8e:5d:67:01:f1:76:a3:f3:28:2e:4e: 26:09:9a:0a:b1:e0:b9:d5:98:e8:08:77:00:e7:67: b8:04:85:ff:11:c3:9d:ee:25:55:5c:20:5f:35:7c: 41:c5:60:d0:b4:33:0b:fb:19:a8:7c:42:23:b8:7e: f6:f0:54:5d:c0:9b:b2:5c:bb:96:4f:d6:2d:bf:d5: cf:b6:53:8e:12:9e:2c:6d:0c:49:c0:9e:7c:f4:4c: 03:63:0b:ce:42:36:74:46:ad:12:34:8c:9e:6e:30: b4:f7:b4:28:18:e5:20:88:e0:8c:64:1e:9a:1d:8c: 63:15:c1:3c:82:ac:f2:df:ec:1d:23:2d:34:19:79: a8:2e:dc:33:56:72:69:2b:06:36:6e:0b:c8:fb:72: f7:6e:2d:fe:75:4e:cc:71:37:94:86:87:e6:31:fd: e1:35:6a:d9:f3:70:00:46:74:d6:65:64:ce:bc:12: ec:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: DE:25:2E:8F:70:2A:5C:89:29:D3:E5:C4:6F:67:2A:78:75:A6:2F:1A X509v3 Authority Key Identifier: keyid:86:E4:25:23:7B:D2:3C:E4:3D:11:98:35:18:12:60:9B:F4:05:55:F5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91C6A87/DA24354E24C511F19A420EEBA5833773/huQlI3vSPOQ9EZg1GBJgm_QFVfU.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B322A5F41D6611E2A3F27F7C72FD1FF2/huQlI3vSPOQ9EZg1GBJgm_QFVfU.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91C6A87/DA24354E24C511F19A420EEBA5833773/55D930E024C611F1B0EE1E69A6833773.roa sbgp-ipAddrBlock: critical IPv4: 185.8.100.0/22 185.100.40.0/22 195.128.4.0/22 Signature Algorithm: sha256WithRSAEncryption 22:67:b6:34:94:3e:48:76:7e:04:65:a9:2e:72:7f:4f:fa:47: 30:3e:44:1f:af:d1:37:e0:1d:54:0a:6c:73:0b:19:78:c0:cb: c4:10:a7:27:a2:1c:8f:be:e3:b9:09:ef:7f:16:81:2d:c0:ea: 2b:0f:b2:b8:cf:7f:1c:99:02:76:3d:aa:65:c9:a8:fd:9e:72: 38:42:06:f9:0c:c3:5e:a7:5a:3a:17:ae:ee:73:d0:6c:67:e2: 03:8b:30:a4:4b:83:0b:63:0e:27:63:70:0d:a8:fc:54:33:da: a3:87:26:88:22:7a:94:b5:5e:a4:17:9c:7c:ae:a4:54:42:1e: a1:95:f0:be:d5:9b:a4:c4:84:b9:f1:e6:11:84:be:26:cb:e2: 2c:76:1e:7f:0b:10:dc:bc:b6:8c:6b:70:67:50:5f:39:f8:0e: 68:92:37:d0:83:5a:73:e9:e2:67:e0:11:4e:46:4a:a5:8c:bd: c3:80:40:35:00:70:f4:ed:94:ae:fb:97:0f:0b:3b:44:69:f1: f5:1b:a3:81:c0:10:27:db:da:fe:47:d1:2c:15:d8:f4:09:62: 7d:c5:14:8e:1e:81:3a:99:1c:17:12:7a:14:9b:b0:20:02:48: ab:cb:91:bf:07:c3:69:5d:85:29:b4:a6:ee:e0:87:1e:51:14: 8d:1e:cb:f8 -----BEGIN CERTIFICATE----- MIIFRzCCBC+gAwIBAgIBBjANBgkqhkiG9w0BAQsFADBGMREwDwYDVQQDEwhBOTFD NkE4NzExMC8GA1UEBRMoODZFNDI1MjM3QkQyM0NFNDNEMTE5ODM1MTgxMjYwOUJG NDA1NTVGNTAeFw0yNjAzMjEwMTM3NDZaFw0yNzA1MDEwMDAwMDBaMBgxFjAUBgNV BAMTDTY5YmRmNjZhLTQ3Y2QwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDKqbJVf0qwi6BhgZzdgoRtFZR8mZ4VECcXWtQCDeJqf3MH5/0H4v09jas/EJoC VMT+Dv4eduZwedHqGdJdXrD6qjNB2Fwq9PUZJRmTC/COXWcB8Xaj8yguTiYJmgqx 4LnVmOgIdwDnZ7gEhf8Rw53uJVVcIF81fEHFYNC0Mwv7Gah8QiO4fvbwVF3Am7Jc u5ZP1i2/1c+2U44SnixtDEnAnnz0TANjC85CNnRGrRI0jJ5uMLT3tCgY5SCI4Ixk HpodjGMVwTyCrPLf7B0jLTQZeagu3DNWcmkrBjZuC8j7cvduLf51TsxxN5SGh+Yx /eE1atnzcABGdNZlZM68EuxRAgMBAAGjggJsMIICaDAdBgNVHQ4EFgQU3iUuj3Aq XIkp0+XEb2cqeHWmLxowHwYDVR0jBBgwFoAUhuQlI3vSPOQ9EZg1GBJgm/QFVfUw DgYDVR0PAQH/BAQDAgeAMIGDBgNVHR8EfDB6MHigdqB0hnJyc3luYzovL3Jwa2ku YXBuaWMubmV0L21lbWJlcl9yZXBvc2l0b3J5L0E5MUM2QTg3L0RBMjQzNTRFMjRD NTExRjE5QTQyMEVFQkE1ODMzNzczL2h1UWxJM3ZTUE9ROUVaZzFHQkpnbV9RRlZm VS5jcmwwfgYIKwYBBQUHAQEEcjBwMG4GCCsGAQUFBzAChmJyc3luYzovL3Jwa2ku YXBuaWMubmV0L3JlcG9zaXRvcnkvQjMyMkE1RjQxRDY2MTFFMkEzRjI3RjdDNzJG RDFGRjIvaHVRbEkzdlNQT1E5RVpnMUdCSmdtX1FGVmZVLmNlcjBKBgNVHSABAf8E QDA+MDwGCCsGAQUFBw4CMDAwLgYIKwYBBQUHAgEWImh0dHBzOi8vd3d3LmFwbmlj Lm5ldC9SUEtJL0NQUy5wZGYwgZYGCCsGAQUFBwELBIGJMIGGMIGDBggrBgEFBQcw C4Z3cnN5bmM6Ly9ycGtpLmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFD NkE4Ny9EQTI0MzU0RTI0QzUxMUYxOUE0MjBFRUJBNTgzMzc3My81NUQ5MzBFMDI0 QzYxMUYxQjBFRTFFNjlBNjgzMzc3My5yb2EwKwYIKwYBBQUHAQcBAf8EHDAaMBgE AgABMBIDBAK5CGQDBAK5ZCgDBALDgAQwDQYJKoZIhvcNAQELBQADggEBACJntjSU Pkh2fgRlqS5yf0/6RzA+RB+v0TfgHVQKbHMLGXjAy8QQpyeiHI++47kJ738WgS3A 6isPsrjPfxyZAnY9qmXJqP2ecjhCBvkMw16nWjoXru5z0Gxn4gOLMKRLgwtjDidj cA2o/FQz2qOHJogiepS1XqQXnHyupFRCHqGV8L7Vm6TEhLnx5hGEvibL4ix2Hn8L ENy8toxrcGdQXzn4DmiSN9CDWnPp4mfgEU5GSqWMvcOAQDUAcPTtlK77lw8LO0Rp 8fUbo4HAECfb2v5H0SwV2PQJYn3FFI4egTqZHBcSehSbsCACSKvLkb8Hw2ldhSm0 pu7ghx5RFI0ey/g= -----END CERTIFICATE-----Generated at Thu Mar 26 01:58:18 2026 by rpki-client